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DETAILED ACTION 

1 . Claims 1-25 remain for examination. The correspondence filed 7/19/07 amended 
claims 1,12, and 17. 

Response to Arguments 

2. Applicant's arguments filed 7/19/07 have been fully considered but they are not 
persuasive. Applicant argues that Gong fails to recite every limitation of the claim by 
arguing that "Gong pertains to portions of code (a.x, b.y, c.z) attempting to access data 
(/tmp/) where the portions of code depend on each other for accessing data", 
(page 8, of the amendment, lines 3-32, but particularly 30-32; boldface emphasis 
Examiner's). Interestingly, Applicant quoted col. 11, lines 46-53, which discloses that 
a.x invokes b.y, which in turn invokes c.z; however, there is no evidence in the prior art 
to support that a reverse relationship necessarily exists. Indeed, this passage discloses 
that when a.x invokes b.y, a.x is saved on the stack and remains inactive until b.y 
finishes its task; similarly, as b.y requires c.z, so b.y is also saved on the stack and 
waits for c.z to complete its task. Additionally, it is noted that access to any portion of 
code is permitted when any permission in any protection domain allows for it (col. 12, 
lines 50-53); in the specific example quoted by Gong, a.x would be able to access 
7tmp/temporary" because a.x is a member of protection domain I, which allows for 
anyone to write to the /tmp directory (col. 13, lines 3-9); thus a.x may access it without 
regard to b.y or c.z. The reverse is not true, however, as neither b.y nor c.z have 
explicit permissions on the /tmp directory as they are members of protection domain J, 
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which only gives permissions to the /share directory (col. 13, lines 10-22). Because the 
relationship regarding permissions is asymmetric as disclosed above, it therefore still 
reads on the amended claims. 

Claim Objections 

3. The numbering of claims is not in accordance with 37 CFR 1.126 which requires 
the original numbering of the claims to be preserved throughout the prosecution. When 
claims are canceled, the remaining claims must not be renumbered. When new claims 
are presented, they must be numbered consecutively beginning with the number next 
following the highest numbered claims previously presented (whether entered or not). 

Misnumbered claims 28, 29, 22, and 23 have been renumbered 22-25 
respectively, as was presented in the preliminary amendment filed 2/27/04. 

Claim Rejections - 35 USC § 102 

4. The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 

5. Claims 1-25 are rejected under 35 U.S.C. 102(b) as being anticipated by Gong 
(U.S. Patent 6,125,447). 

Regarding claims 1, 12, and 17: 

Gong discloses a method, computer system and computer readable medium for 
providing flexible protection by decoupling protection from privilege, comprising: 
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enabling receipt of information describing two or more types of protection (col. 8 line 40 
- col. 9, line 37); enabling receipt of information describing a relationship between said 
two or more types of protection and portions of code that are executed in a same 
privilege level of the computer system, where said relationship is not required to be 
linear (Ibid; and col. 9, lines 40-53); and enabling the association of said information 
describing two or more types of protection and said information describing said 
relationship with said portions of code (Ibid, and col. 10, lines 57-62) wherein a first 
portion of code allowing a second portion of code to access the first portion of code 
does not depend on the second portion of code allowing the first portion of code to 
access the second portion of code (col. 12, line 40 - col. 13, line 10). Per claim 12, 
Gong further discloses a memory unit and processor (col. 4, lines 25-45). 

Regarding claims 2, 13, and 18: 

Gong further discloses wherein said relationship is user-definable (col. 8, lines 
45-63, noting that the ability for a user to set permissions on at least one's home 
directory and the contents therein was known in the art). 

Regarding claims 3, 14, and 19: r 

Gong further discloses wherein said portions of code are domains and each of 
said types of protections is defined in part by at least one or more domain attributes 
(col. 9, lines 40-55). 
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Regarding claims 4 and 20: 

Gong further discloses wherein said one or more domain attributes includes a 
domain identifier that specifies a unique value for a particular domain (col. 9, lines 5-20). 

Regarding claims 5 and 21: 

Gong further discloses wherein said one or more domain attributes includes a 
Private Key that specifies a unique value that a particular domain must use for 
protecting each user that concurrently uses a particular domain (col. 9, lines 5-37). 

Regarding claims 6 and 22: 

Gong further discloses wherein said one or more domain attributes includes a 
SharedCode Key that specifies a value that a particular domain must use to access 
code associated with another domain (col. 9, lines 25-37). 
Regarding claims 7 and 23: 

Gong further discloses wherein said one or more domain attributes includes a 
f SharedData Key that specifies a value that a particular domain must use to access data 

associated with another domain (Ibid). 

Regarding claims 8 and 24: 

Gong further discloses wherein said one or more domain attributes includes a 
AllowOthers Key that specifies a value that a particular domain must use to access 
code associated with another domain in conjunction with said particular domain 
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performing cross-domain switching to said other domain (col. 9, lines 25-37; col. 10, 
lines 27-40). 

Regarding claims 9 and 25: 

Gong further discloses wherein said one or more domain attributes includes a 
AccessOthers Key that specifies a value that a particular domain must use to request 
access of code associated with a particular domain on behalf of another domain (col. 9, 
lines 25-37; col. 10, lines 1-17). 

Regarding claims 10 and 15: 

Gong discloses a method and computer system for providing flexible protection 
by decoupling protection from privilege, comprising: detecting a request from a first 
portion of code to access a second portion of code, wherein said first and second 
portions of code are executed in a same privilege level of said computer system (col. 9, 
lines 54-67; col. 11, lines 40-65); determining whether said first portion of code is 
allowed to access said second portion of code based on information describing two or 
more types of protection and also based on information describing a relationship 
between said two or more types of protection, wherein said relationship is not required 
to be linear (col. 8, line 40 - col. 9, line 37); if said relationship specifies that said first 
portion of code may access said second portion of code, then allowing said first portion 
of code to access said second portion of code (col. 12, lines 54-67); else not allowing 
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said first portion of code to access said second portion of code (Ibid). Per claim 15, 
Gong further discloses a memory unit and processor (col. 4, lines 25-45). 



Regarding claims 11 and 16: 

Gong further discloses wherein said information describing said two or more 
types of protection and said information describing said relationships are associated 
with said portions of code and wherein the method further comprises retrieving said 
information describing said two or more types of protection and said information 
describing said relationships (col. 12, lines 10-40). 

Conclusion 

6. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 



Application/Control Number: 10/769,594 Page 8 

Art Unit: 2135 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tom Gyorfi whose telephone number is (571) 272-3849. 
The examiner can normally be reached on 8:30am - 5:00pm Monday - Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on (571) 272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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